The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Different password for all services

Discussion in 'General Discussion' started by Datcrack, Sep 21, 2008.

  1. Datcrack

    Datcrack Well-Known Member

    Joined:
    Dec 31, 2006
    Messages:
    47
    Likes Received:
    0
    Trophy Points:
    6
    Location:
    Istanbul / TURKEY
    cPanel Access Level:
    Root Administrator
    Hi,

    When we change a password for a host, the cpanel, mysql, ftp and so passwords are all changed to the same. I believe this to be a security risk some how as not every person should have the cpanel access if he/she knows the ftp password for the host.

    Further more, a person that has access to the FTP, has the access to the mail folders and could simply read the whole mail of the host or even delete the mail folder.

    Is there any solution to this ?

    Thanks.
     
  2. rpmws

    rpmws Well-Known Member

    Joined:
    Aug 14, 2001
    Messages:
    1,824
    Likes Received:
    5
    Trophy Points:
    38
    Location:
    back woods of NC, USA
    Typically changing the main account password is done for a reason, often to stop unauthorized access by people who have the old password and / or to allow full access with the new credentials you set. NOT changing all the important passwords associated with the account would be the security risk IMHO. Not the other way around.

    If you would like to grant FTP access to a specific user you can do that by creating a new FTP account and you can choose to give them access to ONLY the public_html or "www" folder.
     
Loading...

Share This Page